IN THE CLAIMS 



This listing of claims will replace all prior versions, and listings, of claims in the 
application: 
Listing of Claims: 

1. (Currently Amended) A method for securing a host service comprising: 

evaluating at a host on which the host service is running a risk to the host service 
based on communication with a remote system; 

creating at the host a risk profile for the host service; and 

deploying a host-based security measure to protect the host service based on the 

risk profile; 

wherein the host service is one of a plurality of host services, each of which has a 
corresponding risk profile, and the host-based security measure is deployed with respect to each 
host service in at least a subset of the plurality of host services, the need for the host-based 
security measure having been determined for each host service, on a host service by host service 
basis, based at least in part on a mann e r d e t e rmin e d at l e ast in part by the corresponding risk 
profile of the host service. 

2. (Original) A method for securing a host service as recited in claim 1 wherein creating a risk 
profile includes assigning a priority to the risk profile. 

3. (Original) A method for securing a host service as recited in claim 1 wherein evaluating a risk 
to the host service further includes determining if the host service calls an interface. 

4. (Original) A method as recited in claim 1 wherein profiling a risk on the host further includes 
determining if an external application requests access to the host. 

5. (Original) A method as recited in claim 1 wherein profiling a risk on the host further includes 
requesting data from the host. 
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6. (Original) A method as recited in claim 1 wherein evaluating a risk to the host service further 
includes determining if the application is directly exchanging data with an external application. 

7. (Original) A method as recited in claim 1 wherein creating the risk profile further includes 
determining if the application is indirectly exchanging data with the remote system. 

8. (Original) A method as recited in claim 1 wherein creating the risk profile includes evaluating 
a file. 

9. (Original) A method as recited in claim 1 wherein creating the risk profile includes evaluating 
a programming interface. 

10. -16. (Canceled) 

17. (Currently Amended) A computer program product for profiling a risk on a host, the 
computer program product being embodied in a computer readable storage medium and 
comprising computer instructions for: 

evaluating at a host on which the host service is running a risk to the host service 
based on communication with a remote system; 

creating at the host a risk profile for the host service; and 

deploying a host-based security measure to protect the host service based on the 

risk profile; 

wherein the host service is one of a plurality of host services, each of which has a 
corresponding risk profile, and the host-based security measure is deployed with respect to each 
host service in at least a subset of the plurality of host services, the need for the host-based 
security measure having been determined for each host service, on a host service by host service 
basis, based at least in part on a mann e r d e t e rmin e d at l e ast in part by the corresponding risk 
profile of the host service. 

18. (Canceled) 
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